sec_case_sensitive_logon Parameter in oracle
1 min readThe SEC_CASE_SENSITIVE_LOGON
parameter is deprecated. It is retained for backward compatibility only.
SEC_CASE_SENSITIVE_LOGON
enables or disables password case sensitivity in the database.
true: Database logon passwords are case sensitive. false: Database logon passwords are not case sensitive.
Only users who have the ALTER SYSTEM
privilege can set the SEC_CASE_SENSITIVE_LOGON
parameter. You should ensure that this parameter is set to TRUE
so that case sensitivity is enforced when a user enters a password.
Ensure that the SEC_CASE_SENSITIVE_LOGON
parameter is not set to FALSE
if the SQLNET.ALLOWED_LOGON_VERSION_SERVER
parameter is set to 12
or 12a
.
1 2 3 4 5 | SQL> show parameter sec_case_sensitive_logon NAME TYPE VALUE ------------------------------------ ----------- ----------------- sec_case_sensitive_logon boolean TRUE |
1 | ALTER SYSTEM SET SEC_CASE_SENSITIVE_LOGON = FALSE SCOPE=BOTH SID='*'; |
Check the password versions for user:
1 2 3 4 5 | SELECT PASSWORD_VERSIONS FROM DBA_USERS WHERE USERNAME='INFOT'; PASSWORD VERSIONS ----------------- 10G |
1 2 3 4 5 | SELECT PASSWORD_VERSIONS FROM DBA_USERS WHERE USERNAME='SCOTT'; PASSWORD VERSIONS ----------------- 11G 12C |